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In this paper, we present an explicit substitution calculus which distinguishes between ordinary bound 
variables and meta- variables. Its typing discipline is derived from contextual modal type theory. We 
first present a dependently typed lambda calculus with explicit substitutions for ordinary variables 
and explicit meta-substitutions for meta-variables. We then present a weak head normalization pro- 
cedure which performs both substitutions lazily and in a single pass thereby combining substitution 
walks for the two different classes of variables. Finally, we describe a bidirectional type checking 
algorithm which uses weak head normalization and prove soundness. 
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1 Introduction 

Over the last decade, reasoning and programming with dependent types has received wide attention and 
several systems provide implementations for dependently typed languages (see for example Agda B1[12!. 
Beluga |T3][T6), Delphin MTR, Twelf HI, etc). 

As dependent types become more accepted, it is interesting to better understand how to implement 
such systems efficiently. While all the systems mentioned support type checking and moreover provide 
implementations supporting type reconstruction for dependent types, there is a surprising lack in docu- 
mentation and gap in modelling the theoretical foundations of these implementations. This makes it hard 
to reproduce some of the ideas, and prevents them from being widely accessible to a broader audience. 

A core question in the implementations for dependently typed systems is how to handle substitutions. 
Let us illustrate the problem in the setting of contextual modal type theory ITTIl . where we not only have 
ordinary IT-types to abstract over ordinary variables x but also LP -types which allow us to abstract over 
meta-variables X, and we find the following two elimination rules: 

A;rh M.UxA.B A;F^N:A A;T\- M : n D X:A[ x P].fi A;VhN:A 
A;F\- M N : [N/x]B A; F h M (^.N) : f¥.N/X}B 

In the ri-elimination rule, we do not want to apply the substitution N for x in the type B eagerly 
during type checking, but accumulate all the individual substitutions and apply them simultaneously, if 
necessary. Similarly, in the n D -elimination rule, we do not want to replace eagerly the meta- variable X 
with N in the type B but accumulate all meta-substitutions and also apply them simultaneously. In fact, 
we would like to combine substitution walks for meta-variables and ordinary variables, and simultane- 
ously apply ordinary substitution and meta-substitutions to avoid multiple traversals. This will allow us 
potentially to detect that two terms are not equal without actually performing a substitution, and in the 
case of a de Bruijn numbering scheme for variables, we would like to avoid unnecessary renumbering. 
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Explicit substitutions for contextual type theory 



Explicit substitutions go back to Abadi et al Q] and are often central when implementing core algo- 
rithms such as type checking or higher-order unification [7]. Many existing implementations of proof 
assistants such as the Twelf system, Delphin, Beluga, Agda or A Prolog use explicit substitutions to com- 
bine substitution walks for ordinary variables. A different approach with the same goal of handling 
substitutions efficiently is the suspension calculus |[T0ll9l. 

However, meta-variables are often modeled via references thereby avoiding the need to explicitly 
propagate substitutions for meta-variables. Yet there are multiple reasons why we would like to treat 
meta-variables non-destructively and be able to handle meta-substitutions explicitly. First, such imple- 
mentations may be easier to maintain and may be more efficient. Second, in several applications we 
need to abstract over the remaining free meta-variables in the most general solution found by higher- 
order unification. For example in type reconstruction we need to store a closed most general type or in 
tabled higher-order logic programming lfT4l we want to store explicitly the answer substitution for the 
meta-variables occurring in a query. Abstraction can be expensive since we need to first traverse a term 
including the types of all the meta-variables occurring in it and collect all references to meta-variables. 
Subsequently, we again need to traverse the term including the types of meta-variables and compute their 
appropriate de Bruijn index. A non-destructive implementation of unification could avoid this explicit 
abstraction step. To achieve a practical, non-destructive implementation of unification, understanding 
the interaction of ordinary substitutions with meta-substitutions and handling both lazily is crucial. 

While meta-variables are often only introduced internally, i.e., there is no abstraction over meta- 
variables using a n D -type, some languages such as Beluga have taken the step to distinguish ordinary 
bound variables and meta-variables already in the source language. Consequently, we find different 
classes of bound variables, bound ordinary variables and bound meta-variables, and different types, 11- 
and n D -types. When type-checking Beluga programs, we would like to combine substitution walks 
for these different classes. Understanding how these two substitutions interact is also crucial for type 
reconstruction in this setting, since omitted arguments may depend on both kinds of variables. 

In this paper, we revisit the ideas of explicit substitutions where we combine substitutions for or- 
dinary variables and meta-variables. In particular, we describe an explicit substitution calculus with 
first-class meta-variables inspired by contextual modal type theory [11 J. We first present a dependently 
typed lambda calculus with explicit substitutions for ordinary variables and explicit meta-substitutions 
for meta-variables. We omit here the ability to abstract explicitly over meta-variables which is a straight- 
forward addition and concentrate on the interaction of ordinary substitutions and meta-substitutions. We 
then present a weak head normalization procedure which performs both substitutions lazily and in a sin- 
gle pass thereby combining substitution walks for the two different classes of variables. Finally, we give 
an algorithm for definitional equality and present a bidirectional type checking algorithm which employs 
weak head normalization and show soundness. In the future, we plan to use the presented calculus as 
a foundation for implementing the Beluga language which supports programming and reasoning with 
formal systems specified in the logical framework LF 

2 The Calculus: Syntax, Typing, and Equality 

Let us first introduce the grammar and typing rules for the dependently typed A -calculus with meta- 
variables based on the ideas in ifTTTl . The system we consider is an extension of the logical framework LF 
with first-class meta-variables. We design the calculus as an extension of previous explicit substitution 
calculi such as H][7]]. These calculi only support ordinary substitutions but not at the same time meta- 
substitutions. 
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Our calculus supports general closures on the type and term level. Meta- variables (which sometimes 
are also called contextual variables) are written as X. Typically, meta-variables occur as a closure [o]X, 
but we will treat this as a special case of the general closure [o]N. 

To provide a compact representation of the typing rules, we follow the tradition of pure type systems 
and introduce sorts and expressions where sorts can be either kind or type and expressions include terms, 
types and kinds. A single syntactic category of expressions helps us avoid duplication in the typing and 
equality rules for closures [o]E and 18}E. We will write M, A, K, if indeed expressions can only occur 
as terms M, types A or kinds K. 



Sorts s ::= kind | type 

Expressions E,F ::= s \ a \ YIE.F \ x n \ X n \ \E \ F E \ [o]E \ {6}E 



Special cases of expressions 

Kinds K 
Types A,B 
Terms M,N 



type | YIA.K | [a]K | [0]K 

a\AM\ UA.B | [a]A | [0JA 

x n \ X n | XM\MN\ [a]N\ [0]M 



«>1 



Substitutions a,T 
Meta-substitutions 



Contexts 
Meta-contexts 



A 



f | o,M | [t]ct I 

r\e,M\{djd' 

■ I 

• \A, x l>>A 



(«>0) 
(n>0) 



Constants are denoted by letter a, their types/kinds are recorded in a global well-formed signature £. 
We have two different de Bruijn indices x n and X n (n> 1), one for numbering bound variables and one 
for numbering meta-variables. x n represents the de Bruijn number n and stands for an ordinary bound 
variable, while X n represents the de Bruijn number n but stands for a meta-variable. Due to the two 
kinds of substitutions, we also have two kinds of closures; the closure of an expression with an ordinary 
substitution a and the closure of an expression with a meta-substitution 8. Following the treatment of 
meta-variables in ifTTTl. we describe the type of a meta-variable as *Fi>A which stands for a meta-variable 
of type A which may refer to variables in *P. 

Meta-substitutions provide a term M for a meta-variable X of type X ¥>A. Note that M does not 
denote a closed term, but a term of type A in the context *P and hence may refer to variables from x i J . In 
previous presentations where we use names for variables, we hence wrote 4*.M/X to be able to rename 
the variables in M appropriately. Because bound variables are represented using de Bruijn indices in this 
paper, we simply write M/X but keep in mind that M is not necessarily closed. 

Our calculus also features closures on the level of substitutions and meta-substitutions. For example, 
we allow the closure [a] z which will allow us to lazily treat ordinary substitution composition and the 
closure [0](7 which will postpone applying 6 to the ordinary substitution a. Similarly, the closure [0]$' 
for meta-substitutions allows us to lazily compose meta-substitutions. We note the absence of a closure 
[g]6. Applying an ordinary substitution a to a meta-substitution 6 simply reduces to 8, since all objects 
in the meta-substitution are closed objects and cannot be affected by a. It is hence not meaningful 
to include a closure [a]6. We also do not introduce a closure of a context *P and a meta-substitution 
6. Instead we define eagerly by simply pushing the meta-substitution 6 to each declaration as 

follows: [0] • = • and [0] (¥,A) = {Off, [0]A. The length of a context T is denoted by |r| and likewise 
|A| for meta-contexts. 
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Explicit substitutions for contextual type theory 



Expressions 

AhTctx AhTctx L(a)=K A;F,AhE:s 



A;T h type : kind A;Fha:K A;F h YLA.E : s 

A;ThA:type A;Thx„:A A;Thfi:type 
A;r,A\- Xl :[f]A A;F,B h x n+l : [f]A 

A;ThA:type A;ThX n :A A;r'hA':type 

A,r>A;[f]rhX i: [f]A A,r>A';[f]rHX„ +1 :[f]A 

A;T,A hM:B A;r,Ahfi:type A;rh£:IIA.F A;ThAf:A 
A;TI- AM : ITA.fi A;T h £ N : [f,N]F 

A;rha:^ A;^h£:kind A^ha:^ A;*P\-E:F 
A;Th [a]E : kind A;F h [a]E : [a]F 

Ah8:A' A^TI-£jj<ind A h 6 : A' A';T\-E :F A;T\-E:Fi A;F h F x = F 2 : s 
A;[0jrh[ej£:kind ' A;[0]rh {djE : {BjF A ; rh£:F 2 

Contexts and meta-contexts 

A;*yhA:type h A mctx A;*yhA:type 

I- • mctx h A, W A mctx Ah-ctx Ah*P,Actx 

Ordinary substitutions 

Ah^Tctx |r|=n A;rha:»P A;»FhA:type A;Th M:\o\A 
A;»F,rht n A;Th (a,M) : (¥,A) 

A; r h t : *y ; A^'ha:^ Ah6:A' A^rhcr:^ 

A;rh[T]a:»F A; [0]r h [0]a : [0] V P 

Meta-substitutions 

HA, A' mctx |A'|=n A h : A' A';ThA:type A; [0]rhM : [0]A 

A,A'hfr" : A Ah (0,M) : A',r>A 

A h : Ap Aq h 0' : A' 

Ah Irene' : a' 



Figure 1 : Typing rules for explicit substitution calculus with first-class meta- variables 
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2.1 Typing rules 

In contrast to JH, we present the typing rules for LF in pure type system (PTS) style, to avoid rule 
duplication (which would be substantial for the rules of definitional equality given in the next section). 
We will use the following judgments: 

h A mctx Meta-context A is well-typed 

A h *F ctx Context *P is well-typed 

A;T h E : F Expression E has "type" F 

A,F h a : *F Substitution a has domain *P and range T 

A h 6 : A' Contextual Substitution 6 has domain A' and range A 

The judgement A;T h E : F subsumes the judgements A;T h M : A (term M has type A), A;F \- A : K 
(type family A has kind K) and A;T h K : kind (kind is well-formed). 

We present the typing rules in Figure [T] as a type assignment system for expressions E. To improve 
readability, we use the letters M,N instead of E when we know that we are dealing with a term, and 
similarly A,B for types and K for kinds. 

In the typing rule for AM, the hypothesis A;T,A h B : type prevents us to form a A -abstraction 
on the type level (for this, we would need B : kind). Lambda on the type level does not increase the 
expressiveness J3l[8). Unlike the system in [8], we do not assume that the meta-context A and the context 
r are well-formed, but ensure that these are well-formed contexts by adding appropriate typing premises 
to for example the typing rules for bound variables and meta-variables. We establish separately that 
contexts are well-formed (see Lemma[T]on page 13 ) and that the inference rules are valid (see Theorem 



|4]on page 14 1 



We concentrate here on explaining the typing rules for bound variables and meta-variables. The typ- 
ing rules for bound variables essentially peel off one type declaration in the context T until we encounter 
the variable x\. The typing premises guarantee that the meta-context A and the context T and the type A 
of the bound variable all are well-typed. The rule for meta-variables are built in a similar fashion as the 
typing rules for bound variables peeling off type declarations from the meta-context A until we encounter 
the meta- variable X\ . 



2.2 Definitional Equality 

In this section, we describe a typed j3r] -equality judgement on expressions, ordinary substitutions, and 
meta-substitutions. We will use the following judgments: 

A;T h E\ = E2 : F Expressions E\ and £2 are equal at "type" F 

A; r h (7i = 02 : ^ Substitutions Oi and 02 are equal at domain m 

A h Qi = 62 '■ A' Meta-substitutions di and 62 are equal at domain A' 

The judgement A;T h Ei = E2 : F subsumes the judgements A;T h Ki = K2 : kind (kinds ^1 and K2 are 
equal), A;T h A\ = A2 : K (types A 1 and A2 are equal of kind K) and A;T h Mi = M2 : A (terms Mi and 
M2 are equal of type A). 

These judgements are all congruences, i. e., we have equivalence rules (reflexivity, symmetry, transi- 
tivity) and a congruence rule for each syntactic construction. For instance, this is one of congruence rule 
for substitutions and the type conversion rule: 

A;F\- M = M' : [o]A A;ThA:type A;T h a = a' : A;Th E = E' : F A;Fh F=F':s 



A;Fh {o,M) = (o',M') -.y, A 



A; T h E = E' : F' 
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The remaining rules for definitional equality fall into two classes: the computational laws for ordinary 
substitutions (Figure [2]) and the computational laws for meta-substitutions (Figure [3). Both sets of rules 
follow the same principle. They are grouped into identity and composition rules, propagation and re- 
duction rules. For ordinary substitutions we also include j8-reduction. For meta-substitutions, there 
is no equivalent j3 -reduction rule since we do not support abstraction over meta- variables. However, 
we add propagation into ordinary substitutions. Note that pushing a meta-substitution inside a lambda- 
abstraction or a Il-type does not require a shift of the indices, since indices of ordinary bound variables 
are distinct from indices of meta- variables and no capture can occur. There is no reduction for [a] [0]M: 
an ordinary substitution cannot in general be pushed past a meta-substitution, it has to wait for the meta- 
substitution to be resolved. 

To illustrate the definitional equality rules, we show how to derive A;T h [<J,M]x n +\ = [o]x„ : [g]A 
which also demonstrates that such a rule is admissible. Transitivity is essential to assemble the follow- 
ing sub-derivations. We abbreviate the use of congruence by writing "Cong", composition by writing 
"Comp", and conversion by writing "Conv". 

Sten 1 • A;*P h x„ : A TTT , 
oiep . n — Weakening 

Reduction 



Cong 



A;W,Bhx n+l = [f]x n :[f]A 

A;rh [<J,M]x n+1 = [c,M][f}x n : [a,M][f]A 

: ; — Comp, Conv 

A;r h [c,M]x n+1 = [o,M][f] Xn : [[o,M]t l ]A 

Step 2: 9 

A;T h o,M : A;»F.B h f : ¥ A;^ h x n : A ^ A;T h [o,M}f = o : 

: : : Comp : Cong 

A;rh [a,M][f]x n = [[a,M]f]x n : [[a,M}f}A A;Fh [[a,M]f]A = [a}A : type ^ 

Conv 



Step 3: 



A;rh [a,M][f]x n = [[a,M]f}x n : [o]A 
A;Th {o,M]f = <? 



A;r\-[[o,M]f]x n = [(j}x n :[o-}A 



Cong 



wnere — Pairing Category Laws 

A;r h [a,M]f = [gjf : ^ A ; r h [o]f = a:^ 
Qi = : Transitivity 

A;Th [a,M]t =o 
Similarly, we can show that A;TI- [0,M]X„ + i = [0]X„ : {djA is admissible. 

2.2.1 Extensionality Laws 

As mentioned earlier, we take into account /3 -reductions and r/ -expansions. In particular, we consider 
r\ -rules for ordinary substitutions as well as meta-substitutions. 

A;T h M : YIA.B 



A;F hM = A(([t']M) xi):UA.B 
Ahr,A,r'ctx \T'\=n hA,r>A,A'mctx |A'|=n 



A;r,A,F h f = (r +1 ,x„+i) : T,A A,T>A,A' h f = (f m ,X«+i) : A,Ti>A 
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f3 -Reduction 

A;T,A \- M :B A;r,AhB:type A;T \- N :A 
A;T h (XM)N = [f,N]M : [f,N]B 

Substitution Propagation: Identity and Composition 

A;FhE:F A;rha:T A;]"' h T : *P A;*? h E : F 

A-T h[f]E=E:F A;rh[(T][T]£E[[(j]T]£:[[(j]T]F 

Substitution Propagation: Constants 

A;Tha:»P A;Tha:»P A;Fha:K 



A;T h [a]type = type : kind A;T h [<r]a = a : [a]^ 

Substitution Propagation: Variable Lookup 

A;rha:»P A;»P>A:type A;rhM:[cr]A A ; rhx„+i:A 



A;r h [a,M]x! = M: [<r]A A ; r hx„ +1 = [f]x n : A 

Substitution Propagation: Pushing into Expression Constructions 

A;Tha:»P A;¥,AhF:j 
A;T h [a](nA.F) = n[a]A. [jPjovqjF : 5 

A;Tha:»P A;»P,AhM:B A;*P,A h B : type 
A;r h [a] (AM) = A [[tV>*i] M : n [ a ] A - [[tV,*i] B 
A;Tha:»P A;¥ h £ : IL4.F A;¥hiVA 
A;T h [a](EN) = [a]E [a]N : [a,[a]A^ 

Substitution Reductions: Pairing and Shifting 

A;T h (<T,Af) : *P,*P',A |V|=n A;rha:1" A;¥' h (t,M) : ¥,A 
A;rh[a,M]t" +1 = [a]r :»P A;T h [a]{z,M) = ([ct]t, [<t]M) : ¥,A 

A h r, Ti , r 2 ctx |ri|=m |r 2 |=n 

A ; r,ri,r 2 P [f]t m = t" +m : r 

Substitution Reductions: Category Laws 

A;rha:»P A;rha:»P 



A;T h [|°]a = a : *P A;T h [<r]t° = a : *P 

A;rihai:r 2 A ; r 2 ha 2 :r 3 A;r 3 ha 3 :r 4 
A;Ti h [ai][a 2 ]a 3 = [[ai]a 2 ]a 3 : T 4 



Figure 2: Computational Laws I: j3 and substitutions 
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Meta-Substitution Propagation: Identity and Composition 

A;rh£:f A h d : A' A'h0':A" A";Fh E:F 

A;T \-U°}E = E:F A; pj^f h = p]0']£ : p]0']F 

Meta-Substitution Propagation: Constants and Ordinary Variables 

A h : A' A'hTctx Ah 6 : A' A';rha:K Ah 6 : A' A';rhx„:A 

A;[0]rh[0ltype = type:kind A; [0]r h [0ja = a : {6]K A; [0]T h \B^x n = x n : [0JA 

Meta-Substitution Propagation: Meta-variable Lookup 

A h : A' A';rhA:type A; [0]r h M : [0]A A;FhX n+1 :A 

A-ldjFh Id, M]X^M:{d]A A;T h X n+ \ = jffP|X^ : A 

Meta-Substitution Propagation: Pushing into Expression Constructions 

A h : A' A';F,AhF:s Ahd:A' A';F,AhM:B A';F,A h B : type 

A;[0]ri-[0](nA.F)=n[0]A.[0]F: J A; [0]r h [0] (AM) = A |0]M : n [0]A. [0]S 

Ahd:A' A';F hE.UA.F A';FhN:A Ahd:A' A'-Fha:^ A';^hE:F 

A;[0]r h [0K£AO = \6\E ie}N: [f,ld}N]F A;[0]r h [0p]£ = [pR[e]£ : PRPF 

Meta-Substitution Propagation: Pushing into Ordinary Substitutions 

a h : a' A'hr,r'ctx |r'|=« 
A;ir,i0]rh[e]rEf:[0]r 

A h : A' A';rha:»P A';»P h A : type A';ThM:[a]A 
A; [0]T h [0](a,M) = ([0]a, [0]M) : [0]>P, [0]A 

A h : A' A';rhT:1" A';*' h a : *P A h : A' A'h0':A" A" ; rha:»P 
A;[e]rh[0)[T]aE[[0]T][0]a:[0]>P A; pj0']r h f9}W^ = PPF = PPP 
Meta-Substitution Reductions: Pairing and Shifting 

A h (d,M) : Aq,A' q ,T>A \A' Q \=n Ah 6 :A' A' Q h (0',M) : A ,r>A 

Ah[0,M]f +1 = MTTAo A h lej(6',M) = ({dp', IW : A ,I>A 

h A,Ai,A2 mctx |Ai|=m |A 2 |=n 

A,Ai,A 2 r-[rir = r +m :A 
Meta-Substitution Reductions: Category Laws 

A h : A A h : Ao Ai h 0i : A 2 A 2 h 2 : A 3 A 3 h 3 : A 4 

Ah^°]0 = 0:A o A h {ejf = d:Ao Ai F PIP^s = PilW : ^4 

Figure 3: Computational Laws II: Meta-substitution 
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2.3 Properties 

Next, we prove some standard properties about the presented type assignment system. First, we show 
that contexts are indeed well-formed. 

Lemma 1 (Context well-formedness) 

1. If A, A' h J or A,A';T h J then h A mctx. 

2. If Ah 6: A' or Ah 6 = 6' : A' then h A' mctx. 

3. If A; r, r h 7 f/zerc A h T ctx. 

4. 7/A;T h a : »P or A;T h a = a' : »P f/jera A h *P ctx. 

The height of the output derivation is bounded by the height of the input derivation, in all cases. 
Proof. By simultaneous induction over all judgments. □ 

The following inversion theorem for typing is standard for PTSs and are necessary due to the type 
conversion rule which makes inversion a non-obvious property. It allows us to classify expressions 
into terms, types, kinds, and the sort kind. We write A; T h F = E' if there exists a sort s such that 
A;T h E = E' : s. 

Theorem 2 (Inversion of typing) 

1. There is no derivation of A;T h kind : E. 

2. If A;T h type : E then E = kind. 

3. If A;F ha:E then A;T h E = 1(a). 

4. Tjf A;T h IIA.F : F f/ierc A;T h A : type a«d A;T,A \- E : F and either F = kind or A; T h F = type. 

5. //A;rhx„ +1 :A thenF = F U A' ,F 2 with |T 2 | =«ant/A;T hA = [|" +1 ]A'. 

6. //A;rhl„ + i :Athen A = A u r'> A', A 2 with \A 2 \ =n andT = \f 1+l \T' and A;T h A= [fr" +1 ]A'. 

7. If A;T h AM : C ?/ierc ?/iere are A,fi swc/i f/iaf A;ThC = ITA.B ant/ A;T h A : type arca 1 
A; T, A h £ : type and A; T, A h M : 5. 

S. If A;Th EN: C then there areA,F such that A;T h E :UA.F and A;T h N : A 
and A;F \-C=[f,N]F. 

9. IfA;F h [cr]F : F tfien f/jere are *F,F' such that A;T h a : *P ana" A;*P h E : F' 
and A;F h E = [a]F' . 

10. If A;F h [0]F : F f/jerc f/zere are A'^F' .roc/z f/W A h 6 : A' and A;F' h F : F' and T = {6\T' 
andA;YhF = \6\F'. 

Proof. By induction on the typing derivation, peeling off the type conversion steps and combining them 
with transitivity. □ 

Expression F is a kind if A; T h F : kind for some A, T, it is a type family if A; T h F : K for some kind 
and some A, T, and it is a fer/n if A; T h F : A for some A, A, T with A; T h A : type. 

The following inversion statement for meta-variables under a substitution is crucial for the correct- 
ness of algorithmic equality (Sec. 3.2) and bidirectional type checking (Sec. [4]). 

Corollary 3 If A;T h [a)X m : A then A = Ai^A', A 2 with |A 2 | = m - 1 and A;T h a : [[fr"!^ 
A;T h A [a][ft m ]A'. 
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Theorem 4 (Syntactic Validity) 

1. If A,Y h E : F or A,Y h E\ = E2 : F then A,Y h F : s/or iome sorf. 

2. If A-T \-E = E':F then A;T h E : F and A;T h E' : F. 
J. If A \- = 6': A' then A h d : A' and A h d' : A'. 

4. If A\Y \~ = 0' '.m then A;T h a : *P and A;T h a' : ¥. 
Proof. By simultaneous induction over all judgments. □ 



3 Evaluation and Algorithmic Equality 

In this section, we define a weak head normalization strategy together with algorithmic equality. The 
goal is to treat ordinary substitutions and meta-substitutions lazily; in particular, we aim to postpone 
shifting of substitutions until necessary. For the treatment of LF, an untyped algorithmic equality is 
sufficient. The design of the algorithm follows Coquand [5] with refinements from joint work with the 
first author [2]. In this article, we only show soundness of the algorithm; completeness can be proven 
using techniques of the cited works. However, an adaptation to de Bruijn style and explicit substitutions 
is necessary; we leave the details to future work. 

We first characterize our normal forms by defining normal and neutral expressions where expressions 
include terms, types, and kinds. Normal forms are exactly the expressions we can type-check with a 
bidirectional algorithm (see Section |4]). Note that type checking normal forms is sufficient in practice, 
since the input to the type checker, written by a user, is almost always in j3 -normal form (or can be turned 
into normal form by introducing typed let-definitions). 

Normal substitutions are built out of normal expressions. However, it is worth keeping in mind that 
our typing rules will ensure that they only contain terms and not types, since we do not support type- 
level variables. Our normal forms are only j8 -normal, not necessarily T]-long. Only meta-variables are 
associated with an ordinary normal substitution, all other closures have been eliminated. 

Normal expressions V ::= s | II V.V' | XV \ U 
Neutral expressions U ::= a | x n \ [v]X„ \ U V 

Normal substitutions v ::= f" | (v,V) 

Next, we define weak head normal forms (whnf). Since we want to treat ordinary substitutions and 
meta-substitutions lazily and in particular want to postpone the complete computation of their compo- 
sitions, we cannot require that substitutions and meta-substitutions are already in normal form. Hence, 
we introduce environments p for ordinary substitutions and similarly meta-substitutions r\ for describing 
substitutions and meta-substitutions that are in weak head normal form. Closures are expressions E in an 
environment p and a meta-environment 77 . It is convenient to also treat variables x n as closures. These 
arise when stepping under a binder in type and equality checking and are the synonym of Coquand 's 
generic values @. 



Weak head normal forms 


W 


::= type [p][rj]nA.B [p][rj]AM H 


Neutral weak head normal forms 


H 


::= a \ x n | [p]X n H L 


Closures 


L 


■■■= *n\\p]ME 


Environments 


P 


■■= r\(P,L)\it n ]p 


Meta-environments 


n 


■■■= no?,M) 
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Our weak head normal forms and closures combine substitutions and meta-substitutions and our 
whnf-reduction strategy simultaneously treats substitutions and meta-substitutions. Instead of coupling 
expressions with two suspended substitutions, we could have introduced a joint simultaneous substi- 
tutions and closures built with them. The path taken in this paper builds on the individual substitution 
operations instead of defining a new joint substitution operation. To clarify the nature and the interplay of 
ordinary substitutions and meta-substitutions it is helpful to consider the typing rule of closures [p] ft] JE: 

A;^ \- p : fqf¥' A h r] : A' A'^'hE .F 

Intuitively, this means to obtain an expression E' which makes actually sense in A and *P, we first 
compute [Tjji? and subsequently apply the ordinary substitution p to arrive at E' = ([p] [77]/?). 

Shift propagation. While we treat shifts in the environment as an explicit operation — to avoid a traversal 
when lifting an environment under a binder — , shifting a closure or a neutral weak head normal form can 
be implemented inexpensively. Let shifting shift" L of a closure L be defined by shift" x m = x n+m and 
shift" ([p] [17 |E) = [[t"]p]M-E'- It i s extended to shifting of neutral weak head normal forms H by 
shift" {HL) = (shift"//) (shift" L) and shift" ([p]X m ) = [[\ n ]p]X m and shift" a = a. 

3.1 Weak head evaluation 

Our weak head evaluation strategy will postpone propagation of substitutions into an expression until 
necessary. Treating substitutions lazily seems to be beneficial as also supported by the experimental 
analysis on lazy vs eager reduction strategies for substitutions by Nadathur and his collaborators 0. We 
present the algorithm for weak head normalization in Figure [4] We define a function whnf L where L is 
either a variable x n or a proper closure [p] \pf\E. The function whnf is then defined recursively on E. 

To support the lazy evaluation of substitutions, our weak head normalization algorithm relies on the 
definition of two functions, namely Env v\ 6 and env p T] a. Both functions are defined recursively over 
the last argument, i.e., Env is inductively defined over 6 and env is inductively defined over a. When we 
encounter a closure of [a]x (or [(?](?' resp.), we compute first the environment corresponding to a and 
subsequently we compute the environment for z. This strategy allows us to avoid unnecessary shifting 
of de Bruijn indices. 

In addition, whnf relies on a lookup function to retrieve the i-th element of a substitution which 
corresponds to the index i. Such lookup functions are defined for both, ordinary variables and meta- 
variables. 

Next, we prove that types are preserved when computing weak head normal forms and that the 
computation is sound with regard to the specification of definitional equality. Note that at this point 
termination is only clear for the lookup and substitution evaluation functions. For whnf and evaluating 
application @ , soundness is conditional on termination. 

Theorem 5 (Subject reduction) Let A h r\ : A'. 

/. If A 1 h d : A" then A h Env 7] d = [t]J0 : A". 

2. IfA';^ ha:?' and A;T h p : fqf¥ then A;T h env p J] a = \p]pl]o : fnf¥'. 

3. /jf A';¥ h X m : A then A; {■qfV h Lookup v\ X m = [Tj]X m : [tj]A. 

4. If A,m \- x m : A and A;T h p : *F then A;T h lookup p x m = [p]x m : [p]A. 
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Meta-substitution evaluation Env 77 6 computes the meta-environment form of [tj]0. 

Env^f = il m+n 

Env (77, M) f l+1 = EnvTjfr" 

EnvTj(0,M) = (Env 77 9, [77 ]M) 

£nvr\ \6\d' = Env (Env 77 0) d' 

Substitution evaluation env p 77 a computes the environment form of [p] [77] a. 

env ([f]p) 77 o = ft*] (env p r\ o) 
env p 77 t° 
env t* rj f" 
env (p,L) 7] f l+1 
env p 77 (<T,Af) 
env p 77 ([<t]t) 
env p 77 (J0]a) 

Meta- variable lookup Lookup 77 Z m retrieves the binding of X m in meta-environment 77. 

Lookup it n X m = X n+m 

Lookup (77, E) X\ = E 

Lookup (77, E) X m+ \ = Lookup 77 X m 

Variable lookup lookup p x m computes the closure form of [p]x m . 

lookup f" x m 



env p 77 f n 

(env p 77 <7,[p][77]M) 
env (env p 77 a) 77 x 
env p (Env 77 B) a 



n+m 



lookup (p,L) xi = L 

lookup (p,L) x m+ \ = lookup p x m 

lookup ([|"]p) x m = shift" (lookup p x m ) 

Weak head evaluation whnf L computes the weak head normal form of closure L. 



whnf x m 
whnf \p][i]]s 
whnf \p][r\\a 
whnf [p][[77]x m 
whnf [p]lf]X m 
whnf [p][77]X m 
whnf \p]M(UA.E) 
whnf [p] [77] (AM) 
whnf [p] [77] (MAT) 
whnf [p] [77] [ct]M 
whnf [p]M[0]M 



x n 

s 

a 



whnf (lookup p x m ) 

whnf [p][t°] (Lookup 77 X m ) 
\p]M(UA.E) 

\p]M(m 

(whnf [p][77]M)@ [p][T]]iV 
whnf [env p 77 a][7j]M 
whnf [p][Env 77 d}M 



Evaluating application W @ L computes the weak head normalform of W L. 



[p][77j(AM)@L 
H@L 



= whnf [p,L][77]M 
= H L 



Figure 4: Weak head evaluation 
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5. LetA';^ h£ : F and A;F hp : {rjfV. 

7/ whnf [p][T]]£ is defined then A;T h whnf [p][T]j£; = [p][T?]£ : [p][T?F- 

6. Le? A;T h IV : ILA.F and A;T hL : A. if W @ L is defined then A;F \~W @ L = W L: [f,L]F. 

Proof. Each by induction on the trace of the function and inversion on the typing derivations, the first 
four statements in isolation and the remaining two simultaneously. □ 

3.2 Algorithmic equality 

Building on the weak head normalization algorithm introduced in the previous section, we now give an 
algorithm for deciding equality of expressions. This is a key piece in the bi-directional type checking 
algorithm which we present in Section [4] Two closures, where L = [p]fqlE and L' = [p'][7]']£', are 
algorithmically equal if their weak head normal forms are related, i.e., whnf [p] [tj]7s ~ whnf [p'] [t/']£'. 

As we check that two expressions are equal, we lazily normalize them using our weak head normal- 
ization algorithm from the previous section and our algorithmic equality algorithm alternates between 
applying a whnf step and actually comparing two expressions or substitutions. 

The actual equality algorithm is defined using three mutual recursive judgments. 1) checking that 
two expressions in whnf are equal 2) checking that two neutral weak head normal forms are equal and 3) 
checking that two environments, i.e., ordinary substitutions in whnf, are equal. 

W ~ W weak head normal forms W, W' are algorithmically equal 

77 ~ 77' neutral weak head normal forms 77,77' are algorithmically equal 

[t k ]P ~ [t* ]p' environments p,p' are algorithmically equal under shifts by k,k' resp. 

Many of the algorithmic equality rules are straightforward and intuitive, although a bit veiled by 
the abundance of explicit shifting that comes with de Bruijn style. When checking whether two meta- 
variables are equal, we need to make sure that respective environments are equal. When we check 
whether two lambda-abstractions are equal, we must lift their environments under the lambda-binding. 
This amounts to shifting them by one and extending them with a binding for the first variable. To handle 
eta-equality, we eta-expand the neutral weak head normal form 77 on the fly when comparing it to a 
lambda-closure. 

Comparing two environments for equality simply recursively analyzes the substitutions. In addition, 
we handle just-in-time eta-expansion on the level of substitutions (see the last two rules). 

Algorithmic equality of neutral weak head normal forms. 

[t°]P~[tV 77-77' whnf L~ whnf U 

a~a x m ~x m [p]X m ~ \p']X m HL^H'L! 

Algorithmic equality of weak head normal forms. 
whnf [p][T7]A^whnf [p'][T]']A' whnf [[t']p,xi][r)]g ~ whnf [[tV,*i] W 

s~s \p\\ n \{nA.B)Z\p>]i n >i(nA>.B>) 

77 H 77' whnf [[t']p,*i] MM ~ whnf [[t']p Vi] WW' 



[p]M(AM)^[p'][T7'](AM') 
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whnf [[f]p,xi}lT}}M~ (shift 1 H) xi (shift 1 //) x x ~ whnf [ffb^ilfapf 

Algorithmic equality of environments. 

k + n = k > + n > if +"] p L [f]p> [f] p ^ [f+*]p' 



[f]f JL [f ]r ' if] [f ]p L [f] p > [f ]p L If] [f'}p> 

[f]p ~ [f ]p' whnf (shift*!,) ~ whnf (shift*'!') 

[f](p,!)~[f'](P',!') 

[f]p ^ [f ] t »'+i W hnf (shift*!) g x k , +n , +l [f]f +l L [f']p' x k+n+l Z whnf (shift*!') 
[f](p,L)^[f]f [f]f^[f](p',L') 

Theorem 6 (Soundness of algorithmic equality) 

/. IfH ~ H' and A;T h // : F <2«<i A;T h //' : F' tfien A;T h F = F' and A;T \~H = H':F. 

2. IfW ™W and A;F hW :F and A;T hW':F f/ien A;T h W = W : F. 

J. //[t*]p ~ [f]p' W A;r h [t*]p : and A;F h [|*']p' : * *en A ; r h [t*]p = [t*V : 

Proo/ Simultaneously by induction on the derivation of algorithmic equality and inversion on the typ- 
ing. □ 



4 Bidirectional Type Checking 

In this section, we show how to use our explicit substitution calculus to type-check expressions. As 
mentioned in the introduction, accumulating substitution walks in type-checking is one of the key ap- 
plications of this work. We only describe the algorithm and leave its theoretical properties for future 
work. 

We design the algorithm in a bidirectional way 13 which allows us to omit type annotations at 
lambda- abstractions. We use the following three judgments: 

A;F \~V ^ s Type normal form V checks against sort s 

A;T h V t= L Normal form V checks against "type" closure ! 

A;T h U =4 ! The type of neutral normal form U is inferred as closure ! 

A;T h v t= *F Normal substitution v checks against domain *P 

In these judgements, T is a list of type closures !. On A we pose no restrictions; an entry ^>A of A is as 
before a list of type expressions and a type expression A. 
Inferring the type of neutral normal forms U. 

ATh[/4L whnf!=[p][T]] (IIA.fi) A;T h V \p\fnjA 
A;rha^[t°][t°]E(a) A;T h U V ^ [p, V][tj]B 

\r'\=n A = Ai, x i>>A,A 2 \A 2 \=n A;F h v t= [f] B" +l fif 

A;r,!,F hx, 1+1 ^shift" +1 ! A;Th [v]X n+l =t [vW +l }A 
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Checking the type of normal forms V. 

whnfL= [p][T]] (nA.fi) A;r,[p][7]]A hV|= [tV^llInjB A;F h U ^ L whnf L ~ whnf Z/ 
A;T r~XV t=L A-,r\- Ut=L' 

Checking well-formedness of types and kinds V. 

A;ThV|=type A;r, [t°][^°]V h V $= s A;T h U ^ L whnfL = type 
A;Th type t= kind A;T h TIV.V 1= s A;rh£/|=type 

Checking normal substitutions v. In this judgement A;T h V |= *F, the context *P is also in closure form. 

|r|=n A^hv^^ A;rhV^L 

A;T Pp 1= • A;T h (v,V) 

5 Conclusion 

We have presented an explicit substitution calculus together with algorithms for weak head normal- 
ization, definitional equality, and bi-directional type checking where both ordinary variables and meta- 
variables are modelled using de Bruijn indices and both kinds of substitutions are handled lazily and 
simultaneously. 

We also have proven subject reduction and soundness of the definitional equality algorithm. Fi- 
nally, we describe a bi-directional type-checking algorithm which treats ordinary substitutions and meta- 
substitutions at the same time. In the future, we plan to prove completeness of algorithmic equality and 
type checking and to adapt the presented explicit substitutions in the implementation of the programming 
and reasoning environment Beluga. 
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